var createError = require('http-errors')
var express = require('express')
var path = require('path')
var cookieParser = require('cookie-parser')
var logger = require('morgan')
var indexRouter = require('./routes/web/index')
const authRouter = require('./routes/web/auth')
const accountRouter = require('./routes/api/accounts')
const authApiRouter = require('./routes/api/auth')
var session = require('express-session')
const MongoStore = require('connect-mongo')
const { DBHOST, DBPORT, DBNAME } = require('./config/config')

var app = express()

// 设置 session 的中间件
app.use(
  session({
    name: 'sid', // 设置 cookie 的 name
    secret: 'xiaoai', // 参与加密的字符串(又称签名) 加盐
    saveUninitialized: false, // 是否为每次请求自动设置一个cookie来存储session的id
    resave: true, // 是否在每次请求是重新保存session
    store: MongoStore.create({
      mongoUrl: `mongodb://${DBHOST}:${DBPORT}/${DBNAME}`
    }),
    // document.cookie
    cookie: {
      httpOnly: true,
      maxAge: 1000 * 60 * 60 * 24 * 7 // 控制 sessenId 的过期时间
    }
  })
)
app.set('views', path.join(__dirname, 'views'))
app.set('view engine', 'ejs')

app.use(logger('dev'))
app.use(express.json())
app.use(express.urlencoded({ extended: false }))
app.use(cookieParser())
app.use(express.static(path.join(__dirname, 'public')))
app.use('/', indexRouter)
app.use('/', authRouter)
app.use('/api', accountRouter)
app.use('/api', authApiRouter)

// catch 404 and forward to error handler
app.use(function (req, res, next) {
  res.render('404')
})

// error handler
app.use(function (err, req, res, next) {
  // set locals, only providing error in development
  res.locals.message = err.message
  res.locals.error = req.app.get('env') === 'development' ? err : {}

  // render the error page
  res.status(err.status || 500)
  res.render('error')
})

module.exports = app
